Firewall/Fail2ban issue VitalPBX 4.5.0-6

kpalech · September 6, 2025, 4:35pm

Hello,

We have a major issue with a multitenant installation. When enabling firewall or fail2ban we have major issue in CPU increasing, packet losses, registrations coming and going.

We get logs like WARNING[2164] pjproject: tsx0x7fcb18eaa948 .Error sending Request msg OPTIONS/cseq=34421 (tdta0x7fcb2c9bc498): Operation not permitted
[2025-09-06 04:33:31] WARNING[2164] pjproject: tsx0x7fcb18eaa948 .Transport error, terminating transaction. Err=120001 (Operation not permitted)

Has anyone faced this? Is there a way to sync firewall and fail2ban rules in GUI with firewall rules in asterisk.
We tried restarting, backup restore the VM, same issue. URGENT ANSWER IS NEEDED PLEASE.

Eli_Hunter · September 6, 2025, 10:02pm

How big is your fail2ban log file? Ive seen fail2ban cause high cpu before but you’re also seeing high cpu with just the firewall enabled?

Any chance you’re experiencing some type of DDoS attack? Netstat may provide some clues.

kpalech · September 7, 2025, 7:04am

The issue was found to be the OpenVPN service. OpenVPN was continuously trying to restablish, (although disabled from GUI and no configuration was enabled), which created packet loss on all interfaces. This seems probably a bug, for those migrating from VitalPBX 3 to 4.5 if OpenVPN was used at some point. Issue resolved by disabling the service.

Eli_Hunter · September 8, 2025, 12:40pm

Nice catch, glad you got it working.

system · October 8, 2025, 12:41pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.